Application Security Architect (PAM)

Please Note: This role is not able to offer Visa transfer or sponsorship now or in the future.

About the role

As an Application Security Architect (PAM), you will make an impact by designing and implementing robust security architectures that protect applications, sensitive data, and privileged access at enterprise scale. You’ll translate business needs into secure, scalable technical solutions; integrate tools and platforms across complex environments; and serve as a trusted advisor to senior stakeholders. You will be a valued member of the Security Architecture/PAM team and collaborate closely with engineering, platform, and product teams to safeguard digital assets and accelerate secure delivery.

In this role, you will

· Design and implement application security architectures that defend against threats and vulnerabilities across hybrid enterprise environments.

· Embed security into the SDLC, partnering with developers to integrate controls, standards, and tooling from design through release.

· Lead security assessments and audits; analyze risks; and drive mitigation plans that balance security, usability, and performance.

· Own privileged access management (PAM) strategy and operations, including deployment and governance of CyberArk, One Identity, and BeyondTrust solutions.

· Integrate and automate security processes and cross‑platform controls (identity, endpoints, servers) to improve efficiency and response.

· Monitor, triage, and analyze security events, identify trends, and continually improve detection and response playbooks.

· Translate business requirements into technical solutions, integrating hardware, software, networks, and data to form secure, resilient systems.

Work model

We believe hybrid work is the way forward as we strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position requiring 3–4 days a week in a client or Cognizant office in Louisville, KY.

The working arrangements for this role are accurate as of the date of posting and may change based on project, business, and client needs. We’ll always be clear about expectations.

What you need to have to be considered

· 5+ years of technical experience in security architecture, technical consulting, or project leadership on enterprise initiatives.

· Enterprise implementation experience, integrating new technologies with existing platforms and delivering solutions with organization‑wide impact.

· Hands‑on Active Directory expertise (multi‑forest/multi‑domain, nested groups, admin roles, access inheritance) and strong understanding of Windows workstation/server administration models.

· PAM tools experience, including CyberArk (e.g., Privileged Cloud, Endpoint Privilege Manager), One Identity, and/or BeyondTrust—with proven delivery in production environments.

· Security assessment & audit experience with the ability to develop effective, pragmatic mitigation strategies.

· Scripting for automation, preferably PowerShell, to report on and manage complex identity environments.

These will help you stand out

· Healthcare industry experience or prior work in a provider domain with application security focus.

· Familiarity with Agile delivery practices.

· One or more security certifications: CISSP, CISA, CISM, CRISC.

· Experience contributing to security policies, standards, and awareness programs.

· Six Sigma certification or demonstrated process‑improvement track record.

We’re excited to meet people who share our mission and can make an impact in a variety of ways. Don’t hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out.

Compensation & Benefits

Applications will be accepted until March 23, 2025.

Salary and Other Compensation:

The annual salary for this position is between $84,000 – $134,000, depending on experience and other qualifications of the successful candidate.

This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.

Benefits: (subject to applicable eligibility requirements)

· Medical/Dental/Vision/Life Insurance

· Paid holidays plus Paid Time Off

· 401(k) plan and contributions

· Long-term/Short-term Disability

· Paid Parental Leave

· Employee Stock Purchase Plan

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

The Cognizant community:
We are a high caliber team who appreciate and support one another. Our people uphold an energetic, collaborative and inclusive workplace where everyone can thrive.

• Cognizant is a global community with more than 300,000 associates around the world.
• We don’t just dream of a better way – we make it happen.
• We take care of our people, clients, company, communities and climate by doing what’s right.
• We foster an innovative environment where you can build the career path that’s right for you.

About us:
Cognizant is one of the world's leading professional services companies, transforming clients' business, operating, and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build, and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant (a member of the NASDAQ-100 and one of Forbes World’s Best Employers 2025) is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com

Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.

Disclaimer:
Compensation information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.